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FIG. 3 



Item 


• Description ••: 


Value employed .'. 
in the present 1 A . 


Version 1 


version 


Version of the 
certificate format 


V3 


serial Number 


Serial number of the 
certificate assigned by 
the IA 


Assigned in a serial 
fashion 


signature algorithm 
Identifier 

algorithm 

parameters 


Algorithm of the signa- 
ture of the certificate 
and parameters thereof 


Elliptic curve number/RSA 
parameters when an 
elliptic curve is used 
Key length when RSA 
is employed 


issuer 


IA name (in a 
distiguished name form) 


Name of the present IA 


validity 

notBefore 
not After 


Period during which the 
certificate is valid 

Start date 

Expiration date 




subject 


Name which identifies 
the user 


User device ID or ID of 
the service subject 


subject Public Key 
Info 
algorithm 

subject Public key 


Information of the public key 
of the user 

Algorithem of the key 

Key 


Elliptic curve/RSA 
Public key of the user 


Version 3 


authority Key Identifier 

key Identifier 

authority Cert Issuer 
authority Cert Serial 
Number 


Key identifier used in verifica- 
tion of the IA 

Key identification number (octal 
number) 

Name of the IA (in a general 
name form) 
Identification number 




subject key Identifier 


Used when a plurality 
of keys are certified 


Not used 


key usage 

(0) digital Signature 

(1) non Repudiation 

(2) key Encipherment 

(3) data Encipherment 

(4) key Agreement 

(5) key CertSign 

(6) cRL Sign 


Specifying the purpose 
of the key 

(0) for digital signature 

(1) to prevent repudiation 

(2) for encryption of the Key 

(3) for encryption of a message 

(4) for use in transmission of a 
symmetric key 

(5) used to verify the certificate 

(6) used to verify the signature 
of the certificate revolution list 


0,1,4, or 6 is used 


private Key Usage 
Period 

notBefore 

not After 


Period during which the 
private key stored in the 
user is valid 


Usage period is the 
same for the certificate, 
the public key, and the 
private Key (default) 
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Certificate Policy 
policy Identifier 
policy Qualifers 


Certificate policy of the certificate authority 
Policy ID (according to ISO/IEC9834-1) 
Certification criteria 


policy Mappings 
issuer Domain Policy 
subject Domain Policy 


Required only when the 
CA is certificated. Mappings 
of the policy of the issuer 
domain policy and the subject 
domain policy are defined 


default = none 


supported Algorithms 
algorithm Identifier 
intended Usage 
intended Certificate 

Policies 


Attributes of the directory 
(X.500) are defined. Used to 
inform a receiving party of 
communication of the attributes 
the direction so that the recei- 
ving party can use the 
direction information 


default = none 


subject Alt Name 


Alternative name of the user 
(in the form of GN) 


not used 


issuer Alt Name 


Not used although this item 
is included in the 
certificate format 
(default = none) 


default = none 


subject Directory Attributes 


Arbitrary attributes of the user 


not used 


basic Constraints 


Specifies the public key 
to be certified 




cA 

path Len Constraint 


Indicates whether the public 
key is used by a user or 
by a certificate authority to 
write a signature 


default 

= used by a user 


name Constraints 
permitted Subtrees 
base 
minimum 


Used only when the 
certification is to certify 
a certification authority (CA) 


default = none 


maximum 
excluded Subtrees 






policy Constraints 
requier Explicit Policy 
inhibit Policy Mapping 


Constraints are described in 
terms of requirements of 
explicit policy ID or inhibit 
policy mapping for the re- 
maining certification path 




CRL Distribution Points 


Indicates a reference point 
in the revocation list at which 
data is present which 
indicates whether the 
certificate of a user is 
revocated 


Pointer which points 
to a location where 
the certificate is 
registered. The 
revocation list is 
managed by an 
issuer 


Signature 


Signature of the issuer 
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Indis- 
pensable 
Items 


.item - . 

Version 


Description 

Version 


Serial Number 


Identification Number 


signature algorithm 
Identifier 

algorithm 

parameters 


Signature algorithem 

Algorithm 
Parameters 


Issuer 


Name of the identification authority 
(in the form of a distinguished name) 


Validity 
notBefore 
notAfter 


Period during which the certificate is valid 
Start date 
Expiration date 


Subject 


Name of the subject to be certificated 
(in a DN form) 


Extended 
Items 


subject Template Info 
encrypt Type 
encrypt Unique ID 

encryption Algorithm 

parameter 

validity 

subject Template Source 
subject Template 


Template information 

• encrypt Type 

•The unique ID or the certificate 
number of a public key certificate 
used for encryption 

• Algorithm 

• parameter 

• Validity period (start date, expiration 
date) 

• Type of the template 

• Template 


Subject PKC info 

subject PKC serial 
Number 

subject PKC Unique ID 


Information about the public key certificate 
of the subject 

• Certificate number of the subject public 
key certificate 

• Unique ID of the subject of the subject 
public key certificate 


Issuer Unique ID 


Unique ID of the issuer 


Subject Unique ID 


Unique ID of the subject 


Public Key Certificate 


Public key certificate 


Issuer Alt Name 


Alternative name of the issuer 


subject Directory 
Attributes 


Personal information (encrypted as required) 
information used to authenticate subject 
Age, sex, etc. 


Valid Count 


Number of times the certificate is allowed 
to be used 


Control Table Link info 
Ctl Tbl Location 
Ctl Tbl Unique ID 


Link information describing group information 

• Location of a link information control 
table (URL, IP address, etc.) 

• Identification number of the link 
information 


Indispen- 
sable 


IDA Signature 


Signature of the IDA 
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ENCRYPTION SCHEME: NONE 
+ 

PUBLIC KEY UNIQUE ID: NONE 



IDENTIFICATION 
APPARATUS 



TEMPLATE 



TEMPLATE 
INFORMATION 



FIG. 6B 



IDENTIFICATION 
APPARATUS 



1 KEY f " 



ENCRYP- 
TION 



ENCRYPTION SCHEME: X-1 
+ 

-PUBLIC KEY UNIQUE ID 



ENCRYPTED 
TEMPLATE 




ENCRYPTED 

TEMPLATE 

INFORMATION 
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ENCRYPTED 

TEMPLATE 

INFORMATION 



ENCRYPTION SCHEME: X-1 
+ 

PUBLIC KEY UNIQUE ID 



ENCRYPTED 
TEMPLATE 



PRIVATE 
KEY 



DECRYP- 




TION 





TEMPLATE 
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FIG. 8A 



RANDOM 
NUMBER 
GENERATION 



TEMPLATE 



PTj 1 

PUBLIC 




KEY ^ 





SYMMETRIC 
KEY 



ENCRYP- 
TION 



IDENTIFICATION 
APPARATUS 



ENCRYPTION SCHEME: X-2 
+ 

^PUBLIC KEY UNIQUE ID 
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ENCRYP- 




TION 



ENCRYPTED 
SYMMETRIC 
KEY 



ENCRYPTED 
TEMPLATE 



ENCRYPTED 

TEMPLATE 

INFORMATION 



ENCRYPTED 

TEMPLATE 

INFORMATION 



FIG. 8B 



ENCRYPTION SCHEME: X-2 
+ 

PUBLIC KEY UNIQUE ID 



ENCRYPTED 
SYMMETRIC 
KEY 



PRIVATE 
KEY 



9m 



DECRYP- 




TION 
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KEY 



ENCRYPTED 
TEMPLATE 
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TION 





TEMPLATE 
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FIG. 9 



(start a template registration process) ^ 



USER CREATES A TEMPLATE USING 
A TEMPLATE DETECTOR OF THE IDA 



THE USER SUBMITS HIS/HER 
IDENTIFICATION DATA TO THE IDA 



THE USER SUBMITS ADDITIONAL 
INFORMATION (SUCH AS A PIN) 
TO THE IDA AS REQUIRED 



THE IDA CHECKS THE VALIDITY 
OF THE RECEIVED DATA 



| OK 



THE IDA ASSIGNS AN IDENTIFICATION 
NUMBER TO THE RECEIVED DATA 
AND STORES IT IN A DATABASE 



S11 



S12 



S13 



k NG 



'S14 
S15 



S17 



ERROR 
HANDLING 



THE IDA ENCRYPTS THE TEMPLATE 
USING A PUBLIC KEY OF THE IDA 
AND GENERATES AN IDC ON THE 
BASIS THEREOF 



( END ) 



S16 



IDA: 



©CHECK THE 
RECEIVED DATA 

©ASSIGN AN ID TO 
THE RECEIVED 
DATA AND STORE 
IT IN THE DATABASE 

©GENERATE AN IDC 



TEMPLATE 
RECEPTION 



IDENTIFI- 
CATION 
DATA 

RECEPTION 



©CREATE 

A TEMPLATE DATA 



©SUBMIT IDENTIFI- 
CATION DATA 



1 



© SUBMIT 

ADDITIONAL DATA 
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( START A TEMPLATE DELETION PROCESS ) 



S21 



S22 



S23 



USER SUBMITS A TEMPLATE DELETION 
REQUEST TO THE IDA 



THE USER SUBMITS IDENTIFICATION DATA 
IDENTIFYING THE USER TO THE IDA 



THE USER SUBMITS ADDITIONAL 
INFORMATION (SUCH AS A PIN) 
TO THE IDA AS REQUIRED 



S24/ 



THE IDA CHECKS THE VALIDITY 
OF THE RECEIVED DATA 



Lok 



S25 



THE IDA DELETES THE REGISTERED 
TEMPLATE, IDENTIFICATION DATA AND 
ADDITIONAL DATA 



S27 



ERROR 
HANDLING 



S26 



THE IDA DELETES THE IDC OF THE USER 
AND DESCRIBES, IN AN INVALIDATED IDC 
LIST, THAT THE IDC HAS BEEN INVALIDATED 



IDA | 

(g) CHECK THE 
RECEIVED DATA 

(3) DELETE THE 
PERSONAL DATA 

(4) DESCRIBE THE 
INVALIDATION IN 
THE INVALIDATED 
IDC LIST 



TEMPLATE 
RECEPTION 



IDENTIFI- 
CATION 
DATA 

RECEPTION 



© 

SUBMIT A DELETION 
REQUEST, IDENTIFICATION 
DATA AND ADDITIONAL 
DATA 



X 



FIG. 
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(start a template changing process^ 



A USER SUBMITS A TEMPLATE CHANGE 
REQUEST TO THE IDA 



THE USER CREATES A TEMPLATE USING 
A TEMPLATE DETECTOR OF THE IDA 



S31 



S32 



S40 



ERROR 
HANDLING 



THE USER SUBMITS IDENTIFICATION DATA 
IDENTIFYING THE USER TO THE IDA 



S33 



THE USER SUBMITS ADDITIONAL INFORMATION 
(SUCH AS A PIN) TO THE IDA AS REQUIRED 



S34 



c 



THE IDA CHECKS THE VALIDITY 
OF THE RECEIVED DATA 



k NG 



I OK 



'S35 



THE IDA DELETES A REGISTERED TEMPLATE | S36 



THE IDA DELETES THE IDC OF THE USER 
AND DESCRIBES, IN THE INVALIDATED IDC 
LIST, THAT THE IDC HAS BEEN INVALIDATED 



S37 



THE IDA ASSIGNS AN INDENTIFICATION NUMBER 
TO THE RECEIVED NEW DATA AND STORES IT 
IN THE DATABASE 



S38 



THE IDA ENCRYPTS THE NEW TEMPLATE USING 
A PUBLIC KEY OF THE IDA AND GENERATES 
AN IDC ON THE BASIS THEROEOF 



S39 



END 



:?P A ,| (4) CHECK THE RECEIVED DATA 



(D DELETE THE PERSONAL DATA 

©DESCRIBE THE INVALIDATION 
IN THE INVALIDATED IDC LIST 
©ASSIGN AN ID TO THE 
RECEIVED NEW DATA AND 
STORES IT IN THE DATABASE 
(8) GENERATE AN IDC 

i 



TEMPLATE 
RECEPTION 



IDENTIFI- 
CATION 
DATA 

RECEPTION 



© 

SUBMIT A TEMPLATE 
CHANGE REQUEST AND 
CREATE TEMPLATE DATA 



SUBMIT IDENTIFI- 
CATION DATA 



(D 



SUBMIT ADDITIONAL 
DATA 



1 
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(start A TEMPLATE addition process) 



A USER SUBMITS A TEMPLATE ADDITION 
REQUEST TO THE IDA 



THE USER CREATES A TEMPLATE USING 
A TEMPLATE DETECTOR OF THE IDA 



THE USER SUBMITS IDENTIFICATION DATA 
IDENTIFYING THE USER TO THE IDA 



S41 



S42 



S43 



S48 



ERROR 
HANDLING 



THE USER SUBMITS ADDITIONAL INFORMATION 
(SUCH AS A PIN) TO THE IDA AS REQUIRED 



S44 



THE IDA CHECKS THE VALIDITY 
OF THE RECEIVED DATA 



~\ NG 
VS45" 



' OK 



THE IDA ASSIGNS AN IDENTIFICATION NUMBER 
TO THE RECEIVED NEW DATA AND STORES IT 
IN THE DATABASE 



THE IDA ENCRYPTS THE NEW TEMPLATE USING 
A PUBLIC KEY OF THE IDA AND GENERATES 
AN IDC ON THE BASIS THEREOF 
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S47 



END 



{DA 



0 CHECK THE RECEIVED DATA 

©ASSIGN AN ID TO THE 

RECEIVED DATA AND STORE 
IT IN THE DATABASE 

©GENERATE AN IDC 



TEMPLATE 
RECEPTION 



IDENTIFI- 
CATION 
DATA 

RECEPTION 



© 

SUBMIT A TEMPLATE 
ADDITION REQUEST 

CREATE TEMPLATE DATA 



SUBMIT IDENTIFI- 
CATION DATA 



<S> 

SUBMIT 

ADDITIONAL DATA 



t 
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(start a template susupension process) 



A USER SUBMITS A TEMPLATE SUSPENSION 
REQUEST TO THE IDA 



S51 



THE USER CREATES A TEMPLATE USING 
A TEMPLATE DETECTOR OF THE IDA 



S52 



S57 



ERROR 
HANDLING 



THE USER SUBMITS ADDITIONAL INFORMATION 
(SUCH AS A PIN) TO THE IDA AS REQUIRED 



S53 



c 



THE IDA CHECKS THE VALIDITY 
OF THE RECEIVED DATA 



y, 



HQ 



S54 



iOK 



THE IDA SUSPENDS THE VALIDITY OF 
REGISTERED TEMPLATE IDENTIFICATION DATA 
AND ADDITIONAL DATA 



S55 



THE IDA INVALIDATES THE IDC OF THE USER 
AND DESCRIBE, IN THE INVALIDATED IDC LIST, 
THAT THE IDC HAS BEEN INVALIDATED 



S56 



= JDA : 



(2) CHECK THE RECEIVED DATA 

(3) SUSPEND THE PERSONAL 
DATA 

0 DESCRIBE, IN THE 

INVALIDATED IDC LIST, THAT 
IDC HAS BEEN INVALIDATED 



TEMPLATE 
RECEPTION 



IDENTIFI- 
CATION 
DATA 

RECEPTION 



1 



® 

SUBMIT A SUSPENTION 
REQUEST, IDENTIFICATION 
DATA AND ADDITIONAL DATA 
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FIG. 14 



c 



START A PROCESS OF CANCELING 
SUSPENSION OF A TEMPLATE 



A USER SUBMITS A TEMPLATE RESUMPTION 
REQUEST TO THE IDA 



S61 



THE USER CREATES A TEMPLATE USING 
A TEMPLATE DETECTOR OF THE IDA 



S62 



S67 



ERROR 
HANDLING 



THE USER SUBMITS ADDITIONAL INFORMATION 
(SUCH AS A PIN) TO THE IDA AS REQUIRED 



S63 



THE IDA CHECKS THE VALIDITY 
OF THE RECEIVED DATA 



| OK 



~\ NG 

VS64~ 



THE IDA CANCELS THE SUSPENSION OF THE 
REGISTERED TEMPLATE, IDENTIFICATION DATA 
AND ADDITIONAL DATA 



S65 



THE IDA CANCELS THE INVALIDATION OF 
THE IDC OF THE USER AND UPDATES 
THE INVALIDATED IDC LIST 



S66 



( END ) 



IDA I 

(D CHECK THE RECEIVED DATA 

(3) CANCEL THE SUSPENSION 
OF THE PERSONAL DATA 

(4) UPDATE THE INVALIDATED 
IDC LIST 




TEMPLATE 
RECEPTION 



IDENTIFI- 
CATION 
DATA 

RECEPTION 



© 

SUBMIT A RESUMPTION 
REQUEST, IDENTIFICATION 
DATA AND ADDITIONAL 
DATA 



FIG. 15 
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( START AN IDC DISTRIBUTION PROCESS ) 



MAKE A CONTRACT BETWEEN AN SP AND 
AN IDA IN ADVANCE AND DETERMINE THE 
OPERATION RULE ACCORDING TO WHICH 
THE IDA PROVIDES SERVICES TO THE SP 



S71 



S79 



ERROR 
HANDLING 



( 



PERFORM MUTUAL AUTHENTICATION 
BETWEEN THE SP AND THE IDA 



"X ng 
yS72~ 



OK J 



THE SP TRANSMITS TO THE IDA AN IDC 
ISSUE REQUEST INCLUDING DATA INDICATING 
A USER NAME AND IDC POLICY 



S73 



S80 



ERROR 
HANDLING 



THE IDA VERIFIES THE IDC ISSUE 
REQUEST 



|OK 



~ \ng 

-/S74~ 



THE IDA SETS THE IDC POLICY IN 
ACCORDANCE WITH THE ISSUE REQUEST 
AND THE OPERATION RULE FOR THE SP 



RE-ENCRYPT, USING THE PUBLIC KEY OF 
THE SP, A TEMPLATE ENCRYPTED USING 
THE PUBLIC KEY OF THE IDA 



IE 



S75 



S76 



CREATE AN IDC IN ACCORDANCE WITH THE IDC POLICY S77 



THE IDA ISSUES THE IDC TO THE SP 



S78 



END 



: IDA = 



©VERIFY THE 
ISSUE REQUEST 

© SET THE IDC 

POLICY 
©ENCRYPT THE 
TEMPLATE USING 
THE PUBLIC KEY 
OF THE SP 



©MAKE A CONTRACT 

BEFOREHAND 
©PERFORM MUTUAL 
^ AUTHENTICATION 



= SP; : 



© SEND A REQUEST 
^ FOR ISSUE OF IDC 



©ISSUE IDC 



1 



FIG. 16 
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( START AN IDC UPDATING PROCESS^) 



MAKE A CONTRACT BETWEEN AN SP AND 
AN IDA IN ADVANCE AND DETERMINE THE 
OPERATION RULE ACCORDING TO WHICH 
THE IDA PROVIDES SERVICES TO THE SP 



S81 



S88 



ERROR 
HANDLING 



( 



PERFORM MUTUAL AUTHENTICATION 
BETWEEN THE SP AND THE IDA 



\ NG 
/S82~ 



OK , 












S89 


THE SP TRANSMITS AN IDC UPDATING 
REQUEST TO THE IDA 


S83 






ERROR 




t 


HANDLING 



< 



THE IDA VERIFIES THE IDC UPDATING\NG 
REQUEST 

j OK 



THE IDA SETS THE IDC POLICY IN 
ACCORDANCE WITH THE ISSUE REQUEST 
AND THE OPERATION RULE FOR THE SP 



S84 
S85 



S86 



CREATE AN IDC IN ACCORDANCE WITH THE IDC POLICY 



THE IDA ISSUES THE IDC TO THE SP 
( END ) 



S87 



: IDA . 



VERIFY THE 
UPDATING REQUEST 
SET THE IDC 
POLICY 

(ENCRYPT THE 
TEMPLATE USING 
THE PUBLIC KEY 
OF THE SP) 



©MAKE A CONTRACT 
BEFOREHAND 

©PERFORM MUTUAL 
AUTHENTICATION 



• sp: 



©TRANSMIT AN IDC 
^ UPDATING REQUEST 



)ISSUE AN IDC 
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( START AN IDC DELETING PROCESS~) 



A USER TRANSMITS AN IDC DELETING 
REQUEST TO AN SP 
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ERROR 
HANDLING 


NG 





REQUEST 



jOK 
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THE SP DELETES THE SPECIFIED IDC OF THE USER 

T 

( END 
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SP | 

(2) VERIFY 

THE DELETING 
REQUEST 

(3) DELETE THE IDC 



TRANSMIT 
AN IDC 
DELETING 
REQUEST 




FIG. 18 
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( START AN IDC INQUIRY PROCESS^) 



BETWEEN THE SP AND THE IDA 



OK«* 



/S02 



THE SP TRANSMITS, TO THE IDA, DATA 
SUCH AS SAMPLING DATA OF A USER 
TO BE INQUIRED ABOUT 



THE SP TRANSMITS AN IDC INQUIRY 
REQUEST TO THE IDA 



S03 



S04 



THE IDA VERIFIES THE IDC INQUIRY \ NG 
REQUEST 



S05 



LOK 











MAKE A CONTRACT BETWEEN AN SP AND 
AN IDA IN ADVANCE AND DETERMINE THE 
OPERATION RULE ACCORDING TO WHICH 
THE IDA PROVIDES SERVICES TO THE SP 


S01 




S08 




ERROR 
HANDLING 


/ PERFORM MUTUAL AUTHENTICATION VIC! 
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ERROR 
HANDLING 



THE IDA COMPARES THE RECEIVED SAMPLING 
DATA WITH THE IDC FOR VERIFICATION 



S06 



THE IDA RETURNS A RESULT (OK/NG) TO THE SP 

T 

( END ") 
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REQUEST 
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FIG. 21A 
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FIG. 24 
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FIG. 33 



USER ID 


IDENTIFICATION 

CERTIFICATE (IDC) IDENTIFIER 


ABC0001 


CDE00021 


ABC0002 


CDE00027 


ABC0003 


CDE03211 






BBC0231 


EED02333 



34/89 

FIG. 34 



DATA TYPE 



TYPE OF DEALING POLICY 



PERIOD DURING WHICH DEALING POLICY IS VALID 



CONTENT ID 



CONTENT PROVIDER ID 



DEALING POLICY ID 



VERSION OF THE DEALING POLICY 



AREA CODE 



USABLE DEVICE CONDITIONS 



USERS PERMITTED TO USE THE CONTENT 



IDC IDENTIFIER LIST 



SERVICE PROVIDER ID 



UCP GENERATION MANAGEMENT INFORMATION - 



MAXIMUM ALLOWABLE NUMBER OF SECONDARY 
DISTRIBUTIONS 



-711 

-712 
-713 



NUMBER OF RULES 



RULE ADDRESS 



RULE N 



RULE NUMBER 



TYPE OF PERMITTED USAGE 



RULE NUMBER 



TYPE OF PERMITTED USAGE 



(INDICATION OF WHETHER THE SIGNATURE 
HAS BEEN VERIFIED) 



PUBLIC KEY CERTIFICATE 



SIGNATURE 



35/89 



FIG. 35 



RULE 
Ml IMRFR 


PERMITTED 
USAGE 


PERIOD 


NUMBER OF 
TIMES 
CONTENT 
IS USED 


COPY 


1 




NOT LIMITED 


NOT LIMITED 




2 


PLAYBACK 


LIMITED 


NOT LIMITED 




3 




NOT LIMITED 


LIMITED 




4 




NOT LIMITED 


NOT LIMITED 


NOT LIMITED 


5 




LIMITED 


NOT LIMITED 


NOT LIMITED 


6 




NOT LIMITED 


LIMITED 


NOT LIMITED 


7 




NOT LIMITED 


NOT LIMITED 




8 


COPY 


LIMITED 


NOT LIMITED 


SCMS 


9 




NOT LIMITED 


LIMITED 




10 




NOT LIMITED 


NOT LIMITED 




11 




LIMITED 


NOT LIMITED 


OTHERS 


12 




NOT LIMITED 


LIMITED 




13 


CHANGING OF PERMITTED USAGE 


14 


REDISTRIBUTION 


15 


UPGRADE TO AN ALBUM 




16 


PERMISSION OF TRANSFERRING MANAGEMENT 



36/89 

FIG. 36 



DATA TYPE 

TYPE OF PRICE INFORMATION 

PERIOD DURING WHICH THE PRICE INFORMATION 
IS VALID 

CONTENT ID 

SERVICE PROVIDER ID 

PRICE INFORMATION ID 

VERSION OF THE PRICE INFORMATION 
AREA C0DE 

USABLE DEVICE CONDITIONS 

USER S PERMITTED TO USE THE CONTENT 

IDC IDENTIFIER LIST - 

CONTENT PROVIDER ID 

DEALING POLICY ID 

NUMBER OF RULES 



RULE ADDRESS 





RULE NUMBER 


RULE 1 














RULE NUMBER 


RULE N 









(INDICATION OF WHETHER THE SIGNATURE 
HAS BEEN VERIFIED) 



PUBLIC KEY CERTIFICATE 



SIGNATURE 



38/89 



FIG. 38 



DATA TYPE 



TYPE OF USAGE PERMISSION CONDITION 
INFORMATION 



PERIOD DURING WHICH THE USAGE PERMISSION 
CONDITION INFORMATION IS VALID 



CONTENT ID 



ALBUM ID 



ENCRYPTION PROCESSING UNIT ID 



USER ID 



CONTENT PROVIDER ID 



DEALINGF POLICY ID 



VERSION OF DEALING POLICY 



SERVICE PROVIDER ID 



PRICE INFORMATION ID 



VERSION OF PRICE INFORMATION 



ID OF USAGE PERMISSION CONDITION 
INFORMATION 



RULE NUMBER OF PERMISSION FOR 
PLAYBACK (USAGE) 

PERMITTED USAGE NUMBER 



NUMBER OF TIMES THE CONTENT IS ALLOWED 
TO BE FURTHER PLAYED BACK 



PERIOD DURING WICH THE PLAYBACK 

PERMISSION IS VALID 

RULE NUMBER OF PERMISSION FOR 
COPYING (USE) 



USAGE PERMISSION NUMBER 



NUMBER OF TIMES THE CONTENT IS 
ALLOWED TO BE FURTHER COPIED 



UCS GENERATION MANAGEMENT INFORMATION 



NUMBER OF TIMES UCS IS ALLOWED TO 
BE SECONDARILY DISTRIBUTED 



IDC IDENTIFIER LIST 



ID OF THE ENCRYPTION PROCESSING UNIT 
HAVING PERMISSION IN TERMS OF PLAYBACK 



39/89 



FIG. 39 




FIG. 40 



SERVICE PROVIDER 



NO 



40/89 

START A CONTENT 
DISTRIBUTION PROCESSING 



S701 



MUTUALLY AUTHENTICATE A SERVICE 
PROVIDER AND A USER DEVICE 



USER DEVICE 



< 



IS THE MUTUAL AUTHENTICATION 
COMPLETED SUCCESSFULLY? 
i YES 



> 



S702 



EXTRACT A SECURE CONTAINER I S703 



TRANSMIT THE SECURE 
CONTAINER TO USER DEVICE 



S704 



S705 



I VERIFY THE SECURE CONTAINER j 



S706 

-^ <IS THE SECURE CONTAINER VALIdT) 
|YES 



S707 



S708 



S709 



INPUT SAMPLING INFORMATION 
AND A USER ID 

31 



EXTRACT AN IDENTIFICATION CERTIFICATE 
(IDC) LIST FROM THE UCP OR THE PRICE 
INFORMATION OF THE SECURE CONTAINER 



RETRIEVE AN IDENTIFICATION CERTIFICATE 
(IDC) IDENTIFIER OF THE USER FROM THE 
IDC LIST ON THE BASIS OF THE USER ID 



S710 



S711 



S712 



IS AN IDC IDENTIFIER CORRESPONDING 

to the user id f ound? 

Iyes 



> 



EXTRACT THE IDENTIFICATION CERTIFICATE 
(IDC) ON THE BASIS OF THE IDC IDENTIFIER 



COMPARE THE SAMPLING INFORMATION WITH 
THE TEMPLATE OF THE EXTRACTED IDC 



NO / IS THE COMPARISON \ S713 
\ RESULT CONSISTENT? / 



TRANSMIT A CONTENT KEY 
ONLY WHEN THE COMPARISON 
RESULT IS CONSISTENT 



YES 



S714 



ERROR 



USE THE CONTENT STORED 
IN THE SEC URE CONTAINER 



S715 



C END ) 



41 /S 



FIG. 41 



SERVICE PROVIDER 



, DiST ributTon processing,) 

^ 



f START A CONTENT 

Ui 



USER DEVICE 



MUTUALLY AUTHENTICATE A SERVICE 
PROVIDER AND A USER DEVICE 



S721 



NO 



< 



S723 



is the mutual authentication 
completed successfully? 

[yes 



S722 



> 



S735 



EXTRACT A SECURE 
CONTAINER 



INPUT SAMPLING 
INFORMATION AND 
A USER ID 



EXTRACT AN IDENTIFICATION 
CERTIFICATE (IDC) LIST FROM THE 
UCP OR THE PRICE INFORMATION 
OF THE SECURE CONTAINER 



RETRIEVE AN IDENTIFICATION 
CERTIFICATE (IDC) IDENTIFIER OF 
THE USER FROM THE IDC LIST 
ON THE BASIS OF THE USER ID 



S724 



S725 



USER 
ID 



S736 



TRANSMIT SAMPLING 
INFORMATION AND A 
USER ID TO THE SP 



IS AN IDC IDENTIFIER 
CORRESPONDING TO 
THE USER ID FOUND? 



1YES 



EXTRACT THE IDENTIFICATION 
CERTIFICATE (IDC) ON THE 
BASIS OF THE IDC IDENTIFIER 



5726 



S727 



3L 



COMPARE THE SAMPLING 
INFORMATION WITH THE TEM- 
PLATE OF THE EXTRACTED IDC 



S728 



SAMPLING 
INFORMATION 



NO 



< 



IS THE COMPARISON 
RESULT CONSISTENT? 



S729 



|YES 



S730 



TRANSMIT THE SECURE 
CONTAINER, AND THE CONTENT 
KEY TO THE USER DEVICE 



S731 



VERIFY THE SECURE 
CONTAINER 



S732 



IS THE SECURE 
CONTAINER VALID? 



> 



ERROR 



|YES S733 



USE THE CONTENT STORED 
IN THE SECURE CONTAINER 



( END ) 



42/89 



FIG. 42 




USAGE CONTROL 
STATUS (UCS) 



Device 2 (User) 
I CONTENT 



UCP 



i® 



PRICE 

INFORMATION 



USAGE CONTROL 
STATUS (UCS) 



User's Template 



• CERTIFICATION OF 
A USER IDENTIFICATION: IDC 
A THIRD-PARTY AGENCY 
CALLED AN IDA (ID AUTHORITY) 
AUTHENTICATES A USER AND 
ISSUES AN IDC (ID CERTIFICATE) 
INCLUDING A SIGNATURE 
OF THE IDA 



AN IDC GUARANTEES 
THAT A USER HAS BEEN 
AUTHENTICATED IN 
ACCORDANCE WITH 
A PREDETERMINED 
PROCEDURE 



AN IDC IS USEFUL 
IN OFF-LINE DEALINGS 



930 



43/89 




FIG. 44 



44 / 89 

/'START A CONTENT *\ 
^DISTRIBUTION PROCESSING^ 



USER DEVICE A 



MUTUALLY AUTHENTICATE 
USER A AND USER B 



NO 



< 



S751 



USER DEVICE B 



IS THE MUTUAL AUTHENTICATION \ 
COMPLETED SUCCESSFULLY? XS752 



J YES 



EXTRACT A SECUR E CONTAINER 



1S753 



TRANSMIT THE SECURE 
CONTAINER TO USER DEVICE B 



S754 



S755 



VERIFY THE SECURE CONTAINER | 



-^°- (lS THE SECURE CONTAINER VALID? ) 

I YES 

S757 



S756 



INPUT SAMPLING INFORMATION 
AND A USER ID 



S758 



S759 



EXTRACT AN IDENTIFICATION CERTIFICATE 
(IDC) LIST FROM THE USAGE CONTROL 
STATUS (UCS, A) 



RETRIEVE AN IDENTIFICATION CERTIFICATE 
(IDC) IDENTIFIER OF THE USER FROM THE 
IDC LIST ON THE BASIS OF THE USER ID 



S760 



NO/fs AN IDC IDENTIFIER CORRESPONDING 
\TO THE USER ID FOUND? 

|YES 



> 



S761 EXTRACT THE IDENTIFICATION CERTIFICATE 
(IDC) ON THE BASIS OF THE IDC IDENTIFIER 



S762 



COMPARE THE SAMPLING INFORMATION WITH 
THE TEMPLATE OF THE EXTRACTED IDC 



NO 



TRANSMIT A CONTENT KEY 
ONLY WHEN THE COMPARISON 
RESULT IS CONSISTENT 



< 



IS THE COMPARISON 
RESULT CONSISTENT? 



> 



S763 



YES 



S764 



ERROR 



USE THE CONTENT STORED 
IN THE SE CURE CONTAINER 



S765 



C END ) 



45/89 



FIG. 45 



DISTRIBUTION PROCE SSING^ 
I 



/"START A CONTENT 



USER DEVICE A 

NO 



MUTUALLY AUTHENTICATE 
USER A AND USER B 



< 



S771 



USER DEVICE B 



IS THE MUTUAL AUTHENTICATION 
COMPLETED SUCCESSFULLY? 



S772 



YES 



S785 



EXTRACT A SECURE 
CONTAINER 



S773 
S774 



EXTRACT AN IDENTIFICATION 
CERTIFICATE (IDC) LIST FROM THE 
UCP OR THE PRICE INFORMATION 
OF THE SECURE CONTAINER 



INPUT SAMPLING INFORMATION 

AND A USER ID 

* 



TRANSMIT SAMPLING 
INFORMATION AND A USER ID 
TO THE USER DEVICE A 



RETRIEVE AN IDENTIFICATION 
CERTIFICATE (IDC) IDENTIFIER OF 
THE USER FROM THE IDC LIST 
ON THE BASIS OF THE USER ID 



S775 



IS AN IDC IDENTIFIER 
CORRESPONDING TO 
THE USER ID FOUND? 



iYES 



EXTRACT THE IDENTIFICATION 
CERTIFICATE (IDC) ON THE 
BASIS OF THE IDC I DENTIFIER 

i 



S776 



S777 



COMPARE THE SAMPLING 
INFORMATION WITH THE TEM- 
PLATE OF THE EXTRACTED IDC 



S778 



S786 



IS THE COMPARISON 
RESULT CONSISTENT? 



S779 



|yes 



S780 



TRANSMIT THE UCS (A), THE SECURE 
CONTAINER, AND THE CONTENT 
KEY TO THE USER DEVICE B 



HZ 



S781 



VERIFY THE UCS (A) AND 
THE SECURE CONTAINER 



S782 



'ARE THE UCS (A) AND 
^SECURE CONTAINER VALLID?. 



ERROR 



|YES S783 



USE THE CONTENT STORED 
IN THE SECURE CONTAINER 



C END ) 



46/89 



CO 




CC LU 



— ' Ll_ 



S ZUJ ^ 
LU rn LU I — >" 

LU _i CO < LU (H < 
S Ll_ ^ tr 




3 LU — I Lugu- 
5 <D CD L1_Q^ 

y — cc >_q_ 2 tr - 

< I— ^< ^^MOi 
CO CO O D_ ZD —I H 



DO 



5o 

OZD 



E O w Q.O lu O n 



3^ cc <c 

CDC =>t- 



UlOZl 



QOZLUCOh 



47/89 



FIG. 47A 



METHOD (1) 

PK CERTIFICATE IDENTIFICATION 
NUMBER IS EMBEDDED IN PKC 



iDC 

TEMPLATE 

PERSON ID 

ID CERTIFICATE 
IDENTIFICATION 
NUMBER 




METHOD (2) 

ID CERTIFICATE IDENTIFICATION 
NUMBER IS EMBEDDED IN PKC 



METHOD (3) 

LINK STRUCTURE ID IS EMBEDDED IN 
EACH IDC AND PKC. LINK STRUCTURE 
INCLUDES A LINK STRUCTURE ID, ID 
CERTIFICATE IDENTIFICATION NUMBER, 
AND A PK CERTIFICATE IDENTIFICATION 
NUMBER 



METHOD (4) 

A PAIR OF A PK CERTIFICATE IDENTI- 
FICATION NUMBER AND AN ID CERTIFI- 
CATE IDENTIFICATION NUMBER IS 
DESCRIBED IN THE OUTSIDE OF THE 
CERTIFICATE 



SIGNATURE OF IDA 



METHOD (5) 

A PAIR OF A PK CERTIFICATE IDENTI- 
FICATION NUMBER AND AN ID CERTIFI- 
CATE IDENTIFICATION NUMBER IS 
DESCRIBED IN THE OUTSIDE OF THE 
CERTIFICATE 



METHOD (6) 

A PAIR OF A PK CERTIFICATE IDENTI- 
FICATION NUMBER AND AN ID CERTIFI- 
CATE IDENTIFICATION NUMBER IS 
DESCRIBED IN THE OUTSIDE OF THE 
CERTIFICATE 



PKC 



PUBLIC KEY 

PK CERTIFICATE 
IDENTIFICATION 
NUMBER 



SIGNATURE OF CA 



48/89 



FIG. 47B 



IDC 

TEMPLATE 
PERSON ID 

ID CERTIFICATE 
IDENTIFICATION 
NUMBER 




SIGNATURE OF IDA 



N SHEETS OF PKC 
(WHERE N>2) 



METHOD (1) 

PK CERTIFICATE IDENTIFICATION 
NUMBER IS EMBEDDED IN PKC 



METHOD (2) 

ID CERTIFICATE IDENTIFICATION 
NUMBER IS EMBEDDED IN PK 



METHOD (3) 

LINK STRUCTURE ID IS EMBEDDED IN 
EACH IDC AND PKC. LINK STRUCTURE 
INCLUDES A LINK STRUCTURE ID, ID 
CERTIFICATE IDENTIFICATION NUMBER, 
AND A PK CERTIFICATE IDENTIFICATION 
NUMBER 



METHOD (4) 

A PAIR OF A PK CERTIFICATE IDENTI- 
FICATION NUMBER AND AN ID CERTIFI- 
CATE IDENTIFICATION NUMBER IS 
DESCRIBED IN THE OUTSIDE OF THE 
CERTIFICATE 



METHOD (5) 

A PAIR OF A PK CERTIFICATE IDENTI- 
FICATION NUMBER AND AN ID CERTIFI- 
CATE IDENTIFICATION NUMBER IS 
DESCRIBED IN THE OUTSIDE OF THE 
CERTIFICATE 



METHOD (6) 

A PAIR OF A PK CERTIFICATE IDENTI- 
FICATION NUMBER AND AN ID CERTIFI- 
CATE IDENTIFICATION NUMBER IS 
DESCRIBED IN THE OUTSIDE OF THE,. 
CERTIFICATE 



PUBLIC KEY 

PK CERTIFICATE 
IDENTIFICATION 
NUMBER 




SIGNATURE OF CA 



49/89 



FIG. 48A 



M SHEETS OF IDC 
(WHERE M>2) 



fDC 

TEMWftTE 

PERSON 10 

ID CERTIFICATE 
IDENTIFICATION 
NUMBER 



METHOD (1) 

PK CERTIFICATE IDENTIFICATION 
NUMBER IS EMBEDDED IN IDC 



METHOD (2) 

ID CERTIFICATE IDENTIFICATION 
NUMBER IS EMBEDDED IN PKC 



METHOD (3) 

LINK STRUCTURE ID IS EMBEDDED IN 
EACH IDC AND PKC. LINK STRUCTURE 
INCLUDES A LINK STRUCTURE ID, ID 
CERTIFICATE IDENTIFICATION NUMBER, 
AND A PK CERTIFICATE IDENTIFICATION 
NUMBER 



METHOD (4) 

A PAIR OF A PK CERTIFICATE IDENTI- 
FICATION NUMBER AND AN ID CERTIFI- 
CATE IDENTIFICATION NUMBER IS 
DESCRIBED IN THE OUTSIDE OF THE 
CERTIFICATE 



METHOD (5) 

A PAIR OF A PK CERTIFICATE IDENTI- 
FICATION NUMBER AND AN ID CERTIFI- 
CATE IDENTIFICATION NUMBER IS 
DESCRIBED IN THE OUTSIDE OF THE 
CERTIFICATE 



METHOD (6) 

A PAIR OF A PK CERTIFICATE IDENTI- 
FICATION NUMBER AND AN ID CERTIFI 
CATE IDENTIFICATION NUMBER IS 
DESCRIBED IN THE OUTSIDE OF THE 
CERTIFICATE 



PKC 



PUBLIC KEY 

PK CERTIFICATE 
IDENTIFICATION 
NUMBER 




SIGNATURE OF IDA 



SIGNATURE OF CA 



50/89 



FIG. 48B 



. Template 
PERSON tO 

ID CERTIFICATE 
iDENTiFICATION 
NUMBER 



METHOD (1) 

ALL PK CERTIFICATE IDENTIFICATION 
NUMBERS ARE EMBEDDED IN EACH PKC 



METHOD (2) 

ALL ID CERTIFICATE IDENTIFICATION 
NUMBERS ARE EMBEDDED IN EACH PKQ. 



METHOD (3) 

LINK STRUCTURE ID IS EMBEDDED IN 
EACH IDC AND PKC. LINK STRUCTURE 
INCLUDES A LINK STRUCTURE ID, ID 
CERTIFICATE IDENTIFICATION NUMBER, 
AND A PK CERTIFICATE IDENTIFICATION 
NUMBER 



METHOD (4) 

A PAIR OF A PK CERTIFICATE IDENTI- 
FICATION NUMBER AND AN ID CERTIFI- 
CATE IDENTIFICATION NUMBER IS 
DESCRIBED IN THE OUTSIDE OF THE 
CERTIFICATE 



METHOD (5) 

A PAIR OF A PK CERTIFICATE IDENTI- 
FICATION NUMBER AND AN ID CERTIFI- 
CATE IDENTIFICATION NUMBER IS 
DESCRIBED IN THE OUTSIDE OF THE 
CERTIFICATE 



METHOD (6) 

A PAIR OF A PK CERTIFICATE IDENTI- 
FICATION NUMBER AND AN ID 
CERTIFICATE IDENTIFICATION 
NUMBER IS DESCRIBED IN THE 
OUTSIDE OF THE CERTIFICATE 




SIGNATURE OF IDA 



SIGNATURE OF CA 



51/89 



FIG. 49A 



IDG 



ENCRYPTED TEMPLATE 
INFORMATION 



PKC (SEVERAL KB) 



ENCRYPTION IS 

PERFORMED 

USING A PUBLIC KEY 

DECRYPTION IS PERFPRMED 
USING A PRIVATE KEY 




FIG. 49B 



PKC 



IDC 



ENCRYPTED USING 
A PUBLIC KEY OF 
A PKC 



ENCRYPTED TEMPLATE 




52X89 



Ll_ 




54/89 



O 




2 
o 


















ATIO 


lAL 


ATIO 


AL ' 




cc 


Q 


o 


cc 


o 


cc 


I f 


LU 


o 


o 


LU 


o 


LU 


CQ 


cc 




CO 




CO 


£>-< 




LU 


>- 


>- 


>- 


>• 


— <cc 


=) 


Q_ 
>- 


AR 


AR 


AR 


AR 




< 




Q 


Q CC 
2LU 


Q 
Z 


Q CC 
2UJ 






Q 


o 


o m 


O 


OCQ 


if 


rSEF 


VALI 


SEC 


OS 
LU =3 

co z 


SEC' 


SECi 
NUM 





Op cc Q O 

LU O h— 



o CC o CC 



^< ^ Q < 

^ CC — Q 

2? CO 5: 0 

Zj9^ o 



CO CO CO 



^ s ° ° 

>: O p p 

5 i= < < 

^ 9: °. O 

2 CC LL LL 

o o I- f= 

o co z 2 

LU LU LU LU 

CO Q Q Q 

-4. 



8 is 



CD 

LO 



55/89 




57/89 



© 



2§ 



LU LU 

CO DC 



DC EE 

0=> 

□= < 
CO Q 
I — Q 
DZLU 

Z><^ 
LU Q ^ 

izO 

I — <Q 



O-JX 
hOh 

<DC ,r, 

00_j^ 

2^Q^ 



Z-OLU 



lu o <0 

■3* ^ r* 



OL 



I" 

CCO 



>- o 

UJ LU 

it: 2 
o jJJ 

co^ 



CO 

_ :> 

O 3[J 
H l±l 2 J 

^ LU ~ 
h-ZjOUJ 



r UJ CD 



<eo 



o 

a= h 
<Pc 

LU !i L 

w±oo 



LO 
LO 



5 CD 



s 5 



<cp- 



© © 



S302 




TO 






IDC 






AN 






FOR 






EQUEST 




cc 




SEND A 
AN SAM 





CO CO 

AGO 



LU LU 

or ^ 



<> 



1 — u_ 

' CO 

co£ 



00 


cx> 


0 


0 


CO 


CO 


CO 


CO 


HE 


















11 




OR 


o< 
2^ 




Ml: 


E- 






<C u_ 






OLL 




DC 


Q< 


-> 


02 






LL-O 


— m Q 




■ ■■ 1 — 


DATA 
S BEI 
ICATE 




EPARI 
NNEC 


_< »- 




cc O 


DC LU 




Q_ O 


=3 OCX 






1 — LU I — 






LU CO ZD 






DC =><C 







58/89 



0. 



12 



CD CD 

< Z 

£o 

UJZ 

< CO 
LU 

^8 




t— CM 



o 

_l 

O 
Q 

S3 

i-co 

o< 



CO 
LO 

CD 



© 



© 



0* 



^ LU C. 
CCLUO 

i— mcj 




cog 



u 



© 



59/89 



■ lu 

W Z CO < 

o 0 -< :c 
<§i-5h 

-IUJZLU 













CD 








Q 




< 




O 




1 








is 
































is 








ZO 



© 



©. 



on- 
ce 

<C LU 



CO O 
LU U_ 



<C>]UJ 

CO^k 
>UJO 



O LU 

<o 

DC CC 



l-O 



O £ 

^ CO 



<D-LU 
OrrOh- 



co luPdq 

QOh^CL 



60/89 




61/89 



© 



CD 




ICATI 
TE 




OCO 
— DC 

Ouj 

t^P 




INFORM/ 
:D SERVI 




INPUT 
DESIRE 





Q-OOOoiii|_ 
— W^ZUJH^ 
^CCOOHO, 

Eccu-o 1-^ 
otoujocoo 

O _ O ^ I — 00 



CO 
CO 
LU 

>-o 

LJjLU 
OLU 

mc5 
dTll. 

co£ 





cc 

LU 








ZD ^ 




O 












OLL. 


CO 


5 lu r: r: 


1— zdOlu 


LU 
>- 


0 A3 
IdllN 
00V 








— ^zo 




INK 

TE 1 
UBLI 
















LU -i LU U_ 




C0±00 



LU CC 
O LU 
QO 









cc 








v: 1— 

LU 






r YES 


PUBLI 
THE 
JIT 






LU°=5 

x ^ 


















cc < — 

£Po 






COU-LU 






zi-z 






<GCZ 






DC LU O 






h-OO 



*© 



© 0 



-•— CM 



OP 



LU O 



OC CO CO 
CO LU O 



O o 



D_ UJ 
m r- 1 



3? 

UJ cc 



•-co 



z^ 
PE 

<C Ll_ 

^< 



ocoS=? 
_<c I- 

2X2 



62/89 



. CO 



P=LuO 

•~o< 

bier ^ 
•□coo 
=?l?cc 

cc _ _ 



v. cc en 
_5coco 



OCh-O 

co£" 

CC CC LU 
IXJ CO 

co 4- 
=>Oo 

ml 

CO 2 
CD <t 

zeege 

LU LU O 



co cq 

LU 

oo 



2cc a5 o 
3t-co9 



"Olu 0 U- 
-LU^OO 



LUCCl- <l- 



UJ CD 
LXOUJ 

LUO 
CO I— CO 



occ^ 



>5o 
bbco> 

h-<CC 
O CC LU 
"Z. LU CO 



o 

CO 



CD 



0- 



<f 2 

O CC i — 



IS* 
8££ 



LU>< 
^ CC 
<C LU DC 



<o 

flco 
5co 

O LU 
U_ CC 

cc< 

LU 31 

a. co 



1« 

LU 

S LU 
CO CO 



C0 0 
5 u_ 
<cc 

fC LU 
I— Q_ o- 

Egg 

;2 LU 
CC Q _] 
LU LU Q_ 



l? CO 
LU & LU 



8s 

<Q 
_ LU 
j<l- 

Q LU 
CO 




jt=u_ 



= 5 SB 

LU LU > CO 
CO cc CC 
— j 3) LU Q 
COCOLU 

^DCLUUJ 

COLU ^ 
<XDCO 
IhOO 



Occ 



— o 



63X89 



0, 



5; ^ LU 



CO S: _CO 
— CO LU O 



J 0 UJ 

5S£ 



lis 



pco 



u__i^- 



UJ CO I— it i— 

£l3£o£ 

>^ <t- LU LU UJ 

-IUJZUJUJ 
Q f— i£T <C ^ QC 





LU 

QC 




ID 




CO 




< 




DC Q 




LU CD LU 








1 — ^ CO 




< < 




cc oc in 


-> 


NOTIFY THAT REGIST 
OF REGISTRATION, 0 
SERVICE CONTRACT 



=>o 



LU LU 
CO ^ 



CO O 
LU U_ 



<>;UJ 

CO^< 
>-LUO 



UJ CO ~^ 

LUGS? 
DC LU 
O DC <C 



CO LU 
<C LU 
X CD 



gu3 i>3 

l-DQ Q_m 
2;CDLU=>rD 

ujQ-iOq. 
o.-.t-oc 

OLU 
^"-^ 

•~££olu£ 

LU < I 



64/89 




65X89 



0 



zco 

eg 

LU 

CDO 
<Z 
go == 

si 

< CO 
UJ 

S58 



Q_ 

<< 

< GO 
X LU 
I- ZD 

oo 



*0 



GO < 



II 

LU 
-— >LU 

is 

<Cco 



^LU _J 



CLJ- COLU 



-LU<=>2 
<LULU | - 



ZD CC X |_U => 
I — LU I — | — 
UJ CO ZD U_ O 
OCZD<<f- 



66/89 



Q Q 

LUZ 
CC =5 
LU O 



LULU 

LUO 
- CQ 



LU^ 



CO 



LU 



2^ O 

CO LU 

<tzZO 

i- $z:cr 
lu ljj cr ^ o 

LuD-zi^-J 

CQ — CD 

oi-Eo 



© 



D_ CO 
LU 





CC 




Br m 




5 lu 




(GRC 
THE 
J NUI 
: ICAT 




g lu o i= 


YES 


RMAT 
<\CQU 
IFICA 

:y ce 




o ■ — LU 








^fl LU 




INK 

TE 1 
UBLI 




— ' 1 — <C D_ 




_<o 




y oc — x 




<9cc 

LU LU LU 




CO _ O O 



LU DC 
O LU 
QO 



coid=>- 

Zh-DC 
<CCO 
CCUJZ 
I — O LU 



LU 

cnco 

gLU 
OO 

6 s 

2 LU 
CC X! 
O I — 

*3 



LU <C CC < O 

O^OZLU 

OfODZ 



67/89 




68/89 



O S2 



Eg 



CD 
CD 



CD 



> l — 

LU 



y= in 

DC O 
LU LU 

> OC 

© 



<6 
I — Q 

© 



:© V <i) ; 



CO 

z: 



CD Q 



O LU | 1 <C 

\ LUZ5Z<< 
'Q-<<COQ 



coyj 

5S 



(D 



69/89 



<LUO 



3=<U 



CO 



Q=9 



>- < 

U LU 

C ^ CD 



Q.Oq>- 
<OdO 

co < c ' 



coo 9 



oc < x: t= 

UJQ-I — f n 
O °- — 
<£CDO 



luOq_0 
5^ uj 

O Q-UJ CC 



- LU < O 



O LU J 



<C CO 
LU < 



=> lu => ,, 



CO 



§1 



IS- 

UJ= j< 

3CQ < 

LU Q- — 

< LU 
CO 



ZD I— 
< <£ 



CD < <c 



UJZO 
OC Zj h " 

<C O 

OLU- 

I — dz CQ 

2 ^ ^ 

LU CO D- 



LU <T LU 

niLrcr 




o 



=1 

<< 



r^cvi 

CO 



LU LU 



70X89 




Q_ 
GO 



71/89 




72X89 



CD 



CObb 
2 I— 



si 

coo 

ccz 
l-< 

© 























Q 












■z. 


O 


LU 








Q 


O 


cc 


ISSU 




< 




O 


uj rz 
b£ 


PE 




Q 


ID# 


! PK 


FIC/ 
IFIC, 
ER ' 


Al 


OF 




ure. 


oc 


O 




D 


LU 






UJ 


'> 












CO 














ZD 


Q 


o9z 


2 






CO 



<Z 



CL CO 

© 



Oo 

Cu £ CD 



2° 
CO < 

S^co 

5S§ 



e 



LUO 



CO LU 

ZD LU ZD 
t-UJ< 



N ccf=a 

j) LU <C LU 

Q_ O CC, 



o 



© 



DCCCO 
LU LU LU 
> CO CC 

© 



[-J^lT 

tip 

-1CCCC 
LU LU LU 

Q > O 



73/89 



FIG. 71 





•■■ Itenr ■• " V- -■• 


■ : ; ■ ;; ' .■ Description. 
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Identification Number 




signature algorithm 
Identifier 


Signature algorithm 




algorithm 
parameters 


Algorithm 
Parameters 


Indis- 
pensable 
Items 


Issuer 


Identification authority name (in the form of 
a distinguished name) 


vaiiQiiy 
notBefore 
notAfter 


Validty period 

• Start date 

• Expiration date 




Subject 


Subject Name (in a DN form) 




subject IDA Info 

subject IDA serial 
Number 

subject IDA Unique ID 


Information about the identification 
cartificate of the subject 

• Certificate number of the identification 
certificate of the subject 

• Subject unique ID of the identification 
cerificate of the subject 




subject PKC info 

subject PKC serial 
Number 

subject PKC Unique ID 


Information about the public key certificate 
of the subject 

• Certificate Number of the public key 
certificate of the subject 

• Subject unique ID of the public key 
certificate of the subject 


•Indispen- 
sable 


IDA'Sighafure ;, /:.'.•" ■ ;.. '. 


Signature ot IDA 
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( START ^) 



A USER A ACCESSES A DEVICE B 



S801 



THE DEVICE B STARTS A PROCESS 
TO AUTHENTICATE THE USER A 



S802 



THE USER A INPUTS HIS/HER 

USER ID OR SAMPLING INFORMATION 

TO THE DEVICE B 



S803 



RETRIEVE THE IDENTIFICATION 
CERTIFICATE(IDC) ON THE BASIS 
OF THE USER ID OR SAMPLING 
INFORMATION 



S804 




ACQUIRE THE IDC OF THE USER A 
FROM THE IDENTIFICATION AUTHORITY 
(IDA) AND STORES THE ACQUIRED 
IDC IN THE DEVICE B 



S806 



AUTHENTICATE THE USER A ON THE 
BASIS OF THE IDC OF THE USER A 



S807 



S808 

'IS THE AUTHENTICATION^^ NO 
-RESULT AFFIRMATIVE? 




THE DEVICE B RETRIEVES A PAIR OF 
A PUBLIC KEY AND A PRIVATE KEY 
APPLICABLE TO A SERVICE PROVIDER 
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- IS THE PAIR OF THE PUBLIC KEY- 
'AND THE PRIVATE KEY FOUND? - 



YES 




NEWLY 


CREATE 


A PAIR OF A PUBLIC KEY 


AND A 


PRIVATE 


KEY 
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REGISTER THE PUBLIC KEY IN THE CA, 
REQUEST THE CA TO ISSUE A PUBLIC 
KEY CERTIFICATE (PKC), AND STORE 
THE ACQUIRED PKC 



S812 



THE DEVICE B FORMS A LINK BETWEEN THE 
IDC AND THE PKC OF THE USER A (CREATES 
GROUP INFORMATION AND STORES IT) AND 
ADD A SERVICE NAME (SERVICE IN WHICH THE 
IDC AND THE PKC ARE USABLE) TO THE LINK 



PERFORM MUTUAL AUTHENTICATION BETWEEN 
THE DEVICE B AND A SERVICE REGISTRATION 
SERVER AND SHARE A SESSION KEY 



S814 



-IS THE RESULT OF THE MUTUAL- 
~ AUTHENTICATION AFFIRMATIVE?^ 



S815 



NO 



S816 



PERFORM AUTHENTICATION OF THE USER A 
TO THE SERVICE REGISTRATION SERVER 
ON THE BASIS OF THE IDC 



ERROR 
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REGISTER THE PKC OF THE USER A 
IN THE SERVICE REGISTRATION SERVER 



S818 



UPON RECEIVING A REGISTRATION COMPLETION 
NOTIFICATION FROM THE SERVICE REGISTRATION 
SERVER, RECEIVE INFORMATION ABOUT USABLE 
SERVICES AND PKC'S OF USABLE CONTENTS 
DISTRIBUTION SERVERS 
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PERFORM MUTUAL AUTHENTICATION BETWEEN THE 
USER A AND A CONTENTS DISTRIBUTION SERVER 
ON THE BASIS OF THE USER A'S PKC REGISTERED 
IN THE SERVICE REGISTRATION SERVER AND ON 
THE BASIS OF THE PKC OF THE CONTENTS 
DISTRIBUTION SERVER 
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-IS THE RESULT OF THE MUTUAL 
-AUTHENTICATION AFFIRMATIVES 



S821 



NO 



S822 



RECEIVE A CONTENT FROM THE CONTENTS 
DISTRIBUTION SERVER 



ERROR 



( END ) 
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A USER A ACCESSES A DEVICE B S851 



THE DEVICE B STARTS A PROCESS S852 
TO AUTHENTICATE THE USER A 



THE USER A INPUTS HIS/HER S853 
USER ID OR SAMPLING INFORMATION 
TO THE DEVICE B 



RETRIEVE THE IDENTIFICATION S854 
CERTIFICATE (IDC) ON THE BASIS 
OF THE USER ID OR SAMPLING 
INFORMATION 




YES ^ , IS^THE IDC OF ^^ 855 



^THE USER A FOUND?. 



ACQUIRE THE IDC OF THE USER A S856 
FROM THE IDENTIFICATION AUTHORITY 
(IDA) AND STORE THE ACQUIRED 
IDC IN THE DEVICE B 



AUTHENTICATE THE USER A ON THE S857 
BASIS OF THE IDC OF THE USER A 




THE DEVICE B RETRIEVES A PAIR OF 
A PUBLIC KEY AND A PRIVATE KEY 
APPLICABLE TO A SERVICE PROVIDER 



ERROR 
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PERFORM MUTUAL AUTHENTICATION BETWEEN 
THE DEVICE B AND A SERVICE REGISTRATION 
SERVER AND SHARE A SESSION KEY 
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S861 

-IS THE RESULT OF THE MUTUAL^ NO 
-AUTHENTICATION AFFIRMATIVE? 



TYES 



PERFORM AUTHENTICATION OF THE USER A 
TO THE SERVICE REGISTRATION SERVER 
ON THE BASIS OF THE IDC 
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UPON RECEIVING A USAGE PERMISSION NOTIFICATION 
FROM THE SERVICE REGISTRATION SERVER, RECEIVE 
INFORMATION ABOUT USABLE SERVICES AND PKC'S 
OF USABLE CONTENTS DISTRIBUTION SERVERS 
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PERFORM MUTUAL AUTHENTICATION BETWEEN THE 
USER A AND A CONTENTS DISTRIBUTION SERVER 
ON THE BASIS OF THE USER A'S PKC REGISTERED 
IN THE SERVICE REGISTRATION SERVER AND ON 
THE BASIS OF THE PKC OF THE CONTENTS 
DISTRIBUTION SERVER 
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-IS THE RESULT OF THE MUTUAL^ ^, NO 
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Lyes 
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ERROR 
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User's Template 



" ■ " • EXP1 RATION- " DATE • " • ' 
' ; ' ; 'OF- ; TH E • TE MPLATE ' ; • 



:USAGE ; VALIbiTY- ; PERIOD; 
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SAM 



USER ID 



IDC 



User's Template 



: expiration- :o ate: :- 
■:-of:the-template-: 



NUMBER OF-:THyiES 

■the-: idc : -is! -allowed 
td:-be:-useo::-::- 



CERTIFICATE ID NUMBER 
NUMBER OF TIMES IDC IS USED. 
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( START AN IDC CHECKING PROCESS ) S1001 
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A USER INPUTS HIS/HER USER ID | S1002 
AND SAMPLING DATA TO A PERSONAL 
DATA ACQUISITION UNIT 



31 



NO 



^ IS THERE AN IDC OF THE USER? ^ -jQQg 
YES|< 



HAS THE EXPIRATION DATE OF 
THE TEMPLATE OF THE IDC NOT 
BEEN REACHED? 



YES^~ 



NO 



S1005 



HAS THE EXPIRATION DATE OF 
THE IDC NOT BEEN REACHED? 



NO 



YES^" 



/S1007 



/IS THE MAXIMUM NUMBER OF TIMESN 
\THE IDC CAN BE USED DEFINED? 



NO 



YES| 



/S1009 



EXTRACT THE NUMBER OF TIMES THE 
IDC HAS BEEN USED FROM THE SAM 
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JlDC ACQUISITION PROCESS 
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JlDC ACQUISITION PROCESS 
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JlDC ACQUISITION PROCESS 



THE NUMBER OF TIMES THE 
HAS BEEN USED^I? 



IDC 



NO 



YES^~ 



/S1011 



EXTRACT THE TEMPLATE OF THE IDC 
AND COMPARE THE SAMPLING DATA 
WITH THE TEMPLATE 
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/lS THE MAXIMUM NUMBER OF TIMEsVj 
\THE IDC CAN BE USED DEFINED? / g, 
YES| 



NO 
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DECREMENT THE VALUE OF THE 
DATA, STORED IN THE SAM, INDI- 
CATING THE NUMBER OF TIMES 
THE IDC HAS BEEN USED 
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IS THE VALUE OF THE DATA, 
STORED IN THE SAM, INDICATING 
THE NUMBER OF TIMES THE IDC , 
HAS BEEN USED EQUAL TO 0? /S1017 



YES| 



NO 



DELETE THE IDC FROM THE SAM 



1S1018 



PERFORM A PROCESS DEPENDING 
UPON THE RESULT OF VERIFICATION 
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IDC ACQUISITION PROCESS 



SET THE VALUE OF THE 
DATA IN THE SAM TO 
INDICATE THE MAXIMUM 
NUMBER OF TIMES THE 
IDC CAN BE USED 
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